Lucene search
K

9791 matches found

Exploit DB
Exploit DB
added 2009/06/08 12:0 a.m.48 views

Interlogy Profile Manager Basic - Insecure Cookie Handling

interlogy Profile Manager Basic for ByPass Insecure Cookie Handling Vulnerability ---------------------------------------------------------- Discovered By: ZoRLu Date: 06/06/2009 Home: yildirimordulari.com / z0rlu.blogspot.com msn: [email protected] N0T: Kpss AnanI...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2009/06/06 12:0 a.m.28 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score
Exploits0References1
securityvulns
securityvulns
added 2009/06/05 12:0 a.m.35 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.2CVSS1.5AI score0.00374EPSS
Exploits1References8Affected Software6
securityvulns
securityvulns
added 2009/06/02 12:0 a.m.22 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2009/06/02 12:0 a.m.95 views

ASMAX AR 804 gu Web Management Console Arbitrary Shell Command Injection Vulnerability

ASMAX 804 gu router is a SOHO class device. It provides ADSL / WiFi / Ethernet interfaces. 2. There is an unauthenticated maintenance script named 'script' in /cgi-bin/ directory of the web management interface. 3. When 'system' paramether is passed to the script it allows running OS shell...

0.6AI score
Exploits0
securityvulns
securityvulns
added 2009/06/01 12:0 a.m.21 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. myPHPNuke: SQL injection...

1.6AI score
Exploits0References4Affected Software2
0day.today
0day.today
added 2009/06/01 12:0 a.m.18 views

ASMAX AR 804 gu Web Management Console Arbitrary Command Exec

Exploit for hardware platform in category remote exploits ============================================================= ASMAX AR 804 gu Web Management Console Arbitrary Command Exec ============================================================= 1. ASMAX 804 gu router is a SOHO class device. It...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2009/05/29 12:0 a.m.24 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. myPHPNuke: crossite scripting, SQL injection...

1.6AI score
Exploits0References11Affected Software10
NVD
NVD
added 2009/05/26 4:30 p.m.16 views

CVE-2009-1790

Cross-site scripting XSS vulnerability in CGI RESCUE Trees before 2.11 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters...

4.3CVSS5.7AI score0.01263EPSS
Exploits0References7
Prion
Prion
added 2009/05/26 4:30 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in CGI RESCUE Trees before 2.11 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters...

4.3CVSS6.2AI score0.01263EPSS
Exploits0References7
Cvelist
Cvelist
added 2009/05/26 4:0 p.m.19 views

CVE-2009-1790

Cross-site scripting XSS vulnerability in CGI RESCUE Trees before 2.11 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters...

5.7AI score0.01263EPSS
Exploits0References7
CVE
CVE
added 2009/05/26 4:0 p.m.40 views

CVE-2009-1790

CVE-2009-1790 affects Trees from CGI RESCUE (before v2.11). The root cause is a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary script/HTML via unspecified parameters. Impact: arbitrary script execution in affected users’ browsers. Affected: Trees v2.10 and earlie...

4.3CVSS5.9AI score0.01263EPSS
Exploits0References7Affected Software1
securityvulns
securityvulns
added 2009/05/25 12:0 a.m.33 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. myPHPNuke: SQL injection, crossite scripting. PostNuke: SQL injection...

1.5AI score
Exploits0References7Affected Software5
securityvulns
securityvulns
added 2009/05/21 12:0 a.m.44 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

4.3CVSS1.5AI score0.01905EPSS
Exploits1References12Affected Software9
securityvulns
securityvulns
added 2009/05/19 12:0 a.m.19 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score
Exploits0References1Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2009/05/18 12:0 a.m.25 views

JVN#28521500 Trees from CGI RESCUE vulnerable to cross-site scripting

Trees, a web log system from CGI RESCUE, contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the software Update to the latest version according to the information provided by the developer. Products Affected Trees...

4.3CVSS5.9AI score0.01263EPSS
Exploits0
securityvulns
securityvulns
added 2009/05/18 12:0 a.m.29 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Yabook: SQL injection...

1.5AI score
Exploits0References2Affected Software2
securityvulns
securityvulns
added 2009/05/15 12:0 a.m.21 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score
Exploits0References2Affected Software1
exploitpack
exploitpack
added 2009/05/14 12:0 a.m.13 views

MRCGIGUY Hot Links SQL 3.2.0 - Insecure Cookie Handling

MRCGIGUY Hot Links SQL 3.2.0 - Insecure Cookie Handling --------------------------------------------------------------- --------------------------------------------------------------- Hot Links SQL / Hot Links SQL-PHP Version 3.2.0 Insecure Cookie Handling Vulnerability...

0.2AI score
Exploits0
0day.today
0day.today
added 2009/05/14 12:0 a.m.21 views

MRCGIGUY Message Box 1.0 Insecure Cookie Handling Vuln

Exploit for unknown platform in category web applications ====================================================== MRCGIGUY Message Box 1.0 Insecure Cookie Handling Vuln ====================================================== --------------------------------------------------------------- Message Bo...

7.1AI score
Exploits0
Rows per page
Query Builder